Overview

overview

7

Static

static

6

849fe2c530...44.apk

android-9-x86

6

849fe2c530...44.apk

android-10-x64

6

849fe2c530...44.apk

android-11-x64

6

PandaHome2.apk

android-9-x86

7

PandaHome2.apk

android-10-x64

7

PandaHome2.apk

android-11-x64

7

FlashLight.apk

android-9-x86

1

FlashLight.apk

android-10-x64

1

FlashLight.apk

android-11-x64

1

OneKeyOffScreen.apk

android-9-x86

1

OneKeyOffScreen.apk

android-10-x64

1

OneKeyOffScreen.apk

android-11-x64

1

Analysis

  • max time kernel
    2356568s
  • max time network
    159s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    20/12/2023, 04:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    PandaHome2.apk

  • Size

    7.7MB

  • MD5

    025b3383ba21ea4e7180aec9addd0f36

  • SHA1

    7645b744d751a1827db9963dbbddb621ddd6a02b

  • SHA256

    ccc473114bd6f70c82e5222ec4c224bac1ea78497ef8c501d3cf1a0f39bcd719

  • SHA512

    a926f53a0b7170e67ced105bf0e5a65f09ab94d7740fee47e34dc425584c8d8843f4963afc6f7ce2659d4b8c55e7bb06f15c0419f47edf9fcab1cb70e95d0647

  • SSDEEP

    196608:D+QZHILBmi1O8Xl7yIPmv8841o1zBkH25/IE7cmR:SQZg1V7y4mD41o1N3I4cQ

Score
7/10
infostealerransomware

Malware Config

Signatures

  • Reads the content of SMS inbox messages. 1 IoCs
    infostealer
  • Changes the wallpaper (common with ransomware activity). 1 IoCs
    ransomware
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.nd.android.pandahome2
    1⤵
    • Reads the content of SMS inbox messages.
    • Changes the wallpaper (common with ransomware activity).
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4461
  • com.nd.android.pandahome2:pandahome_softmgr_process
    1⤵
      PID:4826

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/com.nd.android.pandahome2/databases/91analytics_0515.db
      Filesize

      12KB

      MD5

      f41f531c07d4141546a531ff9caffdcd

      SHA1

      9dcac5aed06972d0ff6bd4cc1f1cdff85b36d3f5

      SHA256

      bb8dee5b5c3779f175abbd142722eb0022b98d374783aa80145b34614a4de646

      SHA512

      e0c8d1a820cb4c098e45776e8b50ea8c83944ef2e3f005cb0acbfc07688974d370f78100ae022f62564fc4c12acfdc43b710c18ca1c30f4f575bc08b9b12d2d4

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/91analytics_0515.db-journal
      Filesize

      512B

      MD5

      299db177c0b903989454d305e26a35a1

      SHA1

      fddddb29bc62cbb4178317e0be7e076fff4c610d

      SHA256

      661d51cfece6fb85199f3cb9abcc5ce704b3d07ceda090d0ba5af13c99346e8e

      SHA512

      2d29eb75333b4f982cdedb750aa15f09ec02a2ce9736c1862619ac19a4bd6cda0671e580fc4771e5527c78f09cd70064331bfda344c65b676d3b35dea3ffde7f

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/data.db
      Filesize

      120KB

      MD5

      c1e03ebdaee13b700781e280017f1d12

      SHA1

      6866475f787d86baf9ce855e3f0ecb47b2e85729

      SHA256

      b6b79e5abba9bf3eea6c7cd631ffdf3062db45de37fc5326b5568cade423a2b0

      SHA512

      42162b39b5893c9765a00ef88ffedf83f1048a6b4bf4268a1dcfed3c17a38edfeb6b0734d08ccc1390a3020f668c25762cc16b405f0b7bb65a3339a25bacf160

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/data.db-journal
      Filesize

      512B

      MD5

      fa4fa0ea71c91d8c2fc026a9da1f3718

      SHA1

      dbe004ac55a16930ba373d1509fe216a123a634a

      SHA256

      8ad8f50ec7c7b5c217541ed3c25ab1e979cbfe707dfb0491d186f60b06c0b3ea

      SHA512

      f76873c56c39117fb8a185493cbfe558596742362e86b559e72837bc6f3c6a5d6e04797a7bb705c8339b261f41d083c27cbaaa2684633075449469d3a1edc070

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/data.db-journal
      Filesize

      8KB

      MD5

      5829c1867cda8764787e0e2b31e3968a

      SHA1

      27177a4d1f9bf617ff44c25a6ab348a484469723

      SHA256

      37198140f9c5c4bc61362800772f6647838d80b89800b17327cdf8cb4d17421b

      SHA512

      bc6a26641c9e0a378056fcc818040d06fea51cde107917199468b7bd6e21c1ab0b2695a21dd93a7bf1ec9c25ad052013f3c34e4d281813c787a9d0e0bf09dfdc

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/data.db-journal
      Filesize

      8KB

      MD5

      428df8a1cf23efa03b6f54617b613ab5

      SHA1

      e87328afcba7d9161e64e8a6f01cb549b9d613ca

      SHA256

      2dfe7c76ded5f850d48eb7096de5aa005a3f7c14ab408df4b6034901476e73f7

      SHA512

      ecfa0602125ce327e50a945100c701ecf1e32c2959e8fc2433736d52aa5863c0001bae989665390bc2b3cd9ac9a95ad7b168d1e030565b3688a8d79d2e6eae86

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/data.db-journal
      Filesize

      512B

      MD5

      5e62cc64c9f11e6a45463e393948dd7c

      SHA1

      460e3f731cac1d852f283c8959ba7c3ac294a872

      SHA256

      f337a54995e39244d5a779d64b9c002498cd8a53deab19d6701f28572e9133d2

      SHA512

      353bed4d20c3c72314310dbb34e7379518fe42050649f0481fbd7cbea001c90fca2cdd939077b7ba65f7b53503f61801afee681c3731517bf5bc0dc7efa6a171

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/data_center.db
      Filesize

      20KB

      MD5

      73422862e4f0d99864d28a06f0edc334

      SHA1

      cf8da8fc0e386e0dbc1595b12a24186b1814930d

      SHA256

      28bdd4f9bcafcb0361266ba54ffd7fb89e9cf9a87c65d77e6ad52488faea617b

      SHA512

      e32536818e53b056af629f74242fe003416d71adf91d2f3c20b320b06791e02c9905d0b3191d91021770f7e6001a87d93fde50f4a3c626193ed41f84d4cfe060

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/data_center.db-journal
      Filesize

      512B

      MD5

      68f1b3fa1d678170ccb94ce2b82571c0

      SHA1

      6480d3fedcfb0cd7f965556d4c29528913b277fa

      SHA256

      ba4e41f13b6271a9b099ee5ec30fa2d395ec83ed2f892c921e0423f3bdfa5d01

      SHA512

      277234783daca76de7777033ef8974b953407f0e3a240cd6be55541aa7338d97feddbc77696764b05f4a33f4e7b29e33a64360b7e4a941d2c9347391314e2c0b

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/data_center.db-journal
      Filesize

      8KB

      MD5

      b96666f31f22bcde0e0e4ebd12171eb8

      SHA1

      2deb4e464e3b7c62476f2aa90d13df05d1f83897

      SHA256

      3f93ab6ff9c43cea0978710e145ab0e9eb5e1c66f3dc8a2eb68e4692c5f7c569

      SHA512

      99f1f4ea4a1b6844bc2f8bfebe3b8fc24aab0d4a9fb3bded59dcb45daf996e53b6e49f04ce773e4157591ecd1a70086cff0079c20b7d1db54e90ed76ef6e4a62

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/data_center.db-journal
      Filesize

      8KB

      MD5

      86211323406499f6277091dd8b0f23c9

      SHA1

      4aedb86b482503458dc89c90d264e7d2bfa1142b

      SHA256

      8e2ac797ca4b620b98816d98408c8de6e7d4ef7ea128bb36b18192290c8b4dbc

      SHA512

      36d0dbc68d7fdcdb1d907ac93d6ee60fc86291f1571c3db3b8b8c612ef2130f30ef874d6c93fcaf2a80fa49e8c64275f346372c5bfbf045c846e1c8489aacd2b

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/data_center.db-journal
      Filesize

      8KB

      MD5

      01be6b54d51a71b516dc3ff1de755f08

      SHA1

      e9bc7937732eb4e5eb5a0bf34d3ffeb582b3e65b

      SHA256

      455c67b1b7372828f3d3a00701d73032f6cb9a053b2a415be06e07ca4dd768cc

      SHA512

      b3eae2d219546eb6824dcdd6889b1af833e55fced11f2d61efca4b53aefeae3412af3fa6d736b8d1d25bed0c0fead0d2568b444dddbc6e17510e2dfa9ad0958f

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/data_center.db-journal
      Filesize

      8KB

      MD5

      65408c2c18562928402f5e5345952786

      SHA1

      c1d96e444eb8f88599de07b6e0edc974d7eb74e4

      SHA256

      492a521db31c62bd12301b8405acef4fc77b76a3c1b94cda0aac13067100d835

      SHA512

      d5abf0b91676011ca3c7ae2923f3f10dd8af21df64dfb884f6b5f7bc32ed82f04f57e6f2df1bdab5e5fc3fb92132f0ec6d41862326c948036a2a25f5675cff4d

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/data_center.db-journal
      Filesize

      8KB

      MD5

      f187da509d7ad1abc0776845ac78b0c0

      SHA1

      928e7f7e64b79f6ed201e993f72549f33452107f

      SHA256

      c5cd204a6a4f03867ade008d559f0fd7154ca9b1bde9122133c751a7dfd4f2e0

      SHA512

      76047859c294587e67ab39c8fe9b49dda2cf1a5a0867f45b683d9a70d1266e653c1cab1109c3ed3cda6a1d0f1653ef8dacc8c115d9c982c3c3e850cb26a5b1a8

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/docbar.db
      Filesize

      20KB

      MD5

      d32f14d777ef1d54f70c9cbb889b08e6

      SHA1

      5eb097f81e8a6b38fe773315343c30f5301d0ea1

      SHA256

      4f927bb5698660dff910474f907b1b69e72f81355f4a0f40453965c102a707ff

      SHA512

      339cb137c03384ddf866a58419d798baf19bf696add8d738386f04a26f3bf1252006c4c853428b7d97fea151764ed172db133394a4726b3012d268a649486226

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/docbar.db-journal
      Filesize

      512B

      MD5

      6ce2aa899cbd7fc471a92003eb2c3f0c

      SHA1

      6eae5b4f0e181dc027f2e1259b7b77669c334e49

      SHA256

      51147c42e0551cf7a41a8d4f63b56a6c1d823cb49833b37730a96f8a6f5a42bb

      SHA512

      4033703f18f4a0c62d6b4fe2444b72182af2cb8ccd566eb1a3346e73091089a4eca74597dc9444f9ad01fa232773841d23a742aecd16aab4ca8f732627a9d823

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/docbar.db-journal
      Filesize

      8KB

      MD5

      698719ee3a1cdc57233e88ffe9fb729b

      SHA1

      b9520cdb65f38188df85f77ff0414eab99b4b416

      SHA256

      351ba315c06709bb34687d9f6219f53a523603bc0b92780ac08883c9cb120948

      SHA512

      31bef2eadd50d016e2bfc47c88f479d7ac080c56c4dd9376a5c1078af384d26e29a387b524fcd79e1985083466efd7ed33df8ceaf4d9176b879b892b119d361d

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/docbar.db-journal
      Filesize

      8KB

      MD5

      9260987c173879442fe0cc99e57a3611

      SHA1

      8c44b2c1983ead7b29c177de70e737c7a94226e7

      SHA256

      bf75eece2d84efeed03c4338a9df2396d64b9b3e79a77e074f0aaca35cb925ce

      SHA512

      5ab47145a8272f8b58e15a511442673d9d2a03c18d30dc03e908b90d2cd5981d38f609cab869690ed4f69234c966759f50027fc79182f093910a28fabfef35eb

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/docbar.db-journal
      Filesize

      8KB

      MD5

      6f570b00e1b605f3bcb9a8901e92f209

      SHA1

      a1c5c6866c703ccdb100c6669f54bdf07dc8e422

      SHA256

      3377412c7b7e435aac953f3ae20928ac21cb09bcbadbe43e1effe1ea9c7c9dcf

      SHA512

      45a5180cc626b18905529d17bb7d9f57b894c21d0523b5afcdcde5a8958e8dec38f0b30555419d9cee58e689a4b5ef073cabea4c4779076ec97e71b938b3c06e

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/docbar.db-journal
      Filesize

      8KB

      MD5

      0097a5e9b0ee51724e8bb2557432d336

      SHA1

      b2c3a3f9c52fe8b4a584f86d92c855fb7bd39704

      SHA256

      20084ef874515b8f22f4bf4125b212542896e43796f60efde475176e266916f3

      SHA512

      384d32b4768e97cacdb3efedc0e1a26972cfe0fc9cac22744dfaf3e4697b91f8d7a76f418ebda6206b85cd62837c298b11856e40e0ba7640c8b6402446eb6de7

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/docbar.db-journal
      Filesize

      8KB

      MD5

      0dbb1264020ad54215d704687f0e72d1

      SHA1

      799dbdee4d8f5e23f395a02545d88cf7d6b2e266

      SHA256

      3b3ee1ac518ec02b730e0c6f44364ce2a6f84ac162884db031ea4c20769002aa

      SHA512

      9aac950ff86993674cb07eb06178f862f380d0398de7752b31cddd2f7ab035cd47b7927e5b55385fd8ffea5e2a316933558ca4da29e723b1ccd4cd39a68f9984

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/launcher.db
      Filesize

      12KB

      MD5

      171aedf968e17a2744d2585715606cb9

      SHA1

      bbeddeb3b89fcf809619c35b4a318a80e7d5b029

      SHA256

      d2ab452d9360848f46af866b870b5c6fc98230b09c72b89cb1a4b2778586678e

      SHA512

      78a0f517ee3d21c153dda6dbfec4187ebaee9d520d7b1b63f358bcb125d08aea53f26943907a56fdeba40161d9fc7e4fd63f9ae3154dd2ad887ba0162738285b

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/launcher.db-journal
      Filesize

      512B

      MD5

      c4067f2bb1a060acc9614a7b2d537570

      SHA1

      8070909387491be5e40f570964e03e1f8c1a8de7

      SHA256

      b3dad3545f0cfce774c3e8b584f0b20518e7d8a2e67afcfe65e6d0fe8812ef62

      SHA512

      eb20bad02826d1032d794464a513854bd7558898a5550094305a2af541820627a92f2303f020980298e2b98c0abe23a2023a763779f178097c871a333c4ca791

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/launcher.db-journal
      Filesize

      8KB

      MD5

      0f95bb1f3b91c07d528ee149a9fbd351

      SHA1

      9b633c69e4f38191c354eaed87b129fb6d1a1a8a

      SHA256

      e0b6cd7f0046e50271f4eb71fc3c12e2f6b627147e1fba55ed87ef18fc5f4c62

      SHA512

      7810ee69413d936edb40c924cc04aecccb760d1c1c533a253ee3bbf512d7a3f99cbd8c7e088118b54f41eaa9c787f047cf9d38f325d392bab7d046f7c8eb051b

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/databases/launcher.db-journal
      Filesize

      8KB

      MD5

      9978c1ffa80aa5909a6371c8d3bc490a

      SHA1

      00e27b599cd16af5b55d4352ab27c3d1052253dd

      SHA256

      88733399e953d3b69a5a813546808732b0d2c2f80158cdae7eee0bf75dd2fbd4

      SHA512

      1afb628f17e3c0ce8bee0735614dfb474c64c450f77f54ee490787c5f6222c04f9843eb7d902c1681aa44869f5fa3d4ce45b069dccdb0b10e22145ee3afe10bd

      Download Submit

    • /data/user/0/com.nd.android.pandahome2/files/channel.ini
      Filesize

      1024B

      MD5

      ecc621cf291a16725abe06eb207c6fd8

      SHA1

      d01f1ccfcba3adc8c8eb225ebda46bb4a58b0ed5

      SHA256

      11731eff80155cae1c37ab6ed9c1140a2edf0677bd62cac471366517235c7418

      SHA512

      defb51de5f34e9898c56c1c99c15d4ab68d2d8e44691218597a58bb3d5b10f2df810c279d61455d88e278c16b4315c56a5f75340d8bbc8506778ce5d7ebbb745

      Download Submit